OSV-2023-197

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/p11-kit/OSV-2023-197.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-197
Published
2023-03-18T13:00:57.254906Z
Modified
2026-04-01T14:27:01.011835Z
Summary
Global-buffer-overflow in base_C_MessageEncryptInit
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57120

Crash type: Global-buffer-overflow READ 8
Crash state:
base_C_MessageEncryptInit
rpc_C_MessageEncryptInit
p11_rpc_server_handle
References

Affected packages

OSS-Fuzz / p11-kit

Package

Name
p11-kit
Purl
pkg:generic/p11-kit

Affected ranges

Type
GIT
Repo
https://github.com/p11-glue/p11-kit.git
Events
Introduced
7fe7e5d95d9197e7f52aab314468d424acc6ac88

Affected versions

0.*
0.25.0
0.25.1
0.25.10
0.25.2
0.25.3
0.25.4
0.25.5
0.25.6
0.25.7
0.25.8
0.25.9
0.26.0
0.26.1
0.26.2

Ecosystem specific 

{
    "severity": null
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/p11-kit/OSV-2023-197.yaml"